mirror/freebsd-ports
1
0
Fork 0
mirror of https://git.FreeBSD.org/ports.git synced 2024-11-27 00:57:50 +00:00
Code Issues Releases Activity
b9b283093d
freebsd-ports/russian
History
Olli Hauer 5e7bd302a1 - update to 4.0.5 
Vulnerability Details
=====================

Class:       Cross-Site Request Forgery
Versions:    4.0.2 to 4.0.4, 4.1.1 to 4.2rc2
Fixed In:    4.0.5, 4.2
Description: Due to a lack of validation of the enctype form
             attribute when making POST requests to xmlrpc.cgi,
             a possible CSRF vulnerability was discovered. If a user
             visits an HTML page with some malicious HTML code in it,
             an attacker could make changes to a remote Bugzilla installation
             on behalf of the victim's account by using the XML-RPC API
             on a site running mod_perl. Sites running under mod_cgi
             are not affected. Also the user would have had to be
             already logged in to the target site for the vulnerability
             to work.
References:  https://bugzilla.mozilla.org/show_bug.cgi?id=725663
CVE Number:  CVE-2012-0453

Approved by:	skv (implicit)
2012-04-10 05:15:47 +00:00
..
artwiz-ru
aspell - Pass maintainership to office@FreeBSD.org 2011-11-28 16:06:13 +00:00
bugzilla3-ru
bugzilla-ru - update to 4.0.5 2012-04-10 05:15:47 +00:00
calligra-l10n - Bump PORTREVISION to chase the update of multimedia/libvpx 2012-02-16 15:57:34 +00:00
d1489
eric4 Update to version 4.5.2. 2012-04-03 12:11:39 +00:00
fortune-bashorgru Un-break by fix fetching. 2011-10-04 23:19:55 +00:00
fortuneru Remove more tags from pkg-descr files fo the form: 2011-10-24 04:17:37 +00:00
gd - add FETCH_DEPENDS 2011-11-14 06:08:41 +00:00
gimp-help
hunspell - Update to 20111003 2011-10-10 03:14:39 +00:00
hyphen
ircd-hybrid
kde3-i18n
kde4-l10n The KDE/FreeBSD team is pleased to announce KDE SC 4.7.4, which 2012-01-25 10:21:01 +00:00
koffice-i18n
koffice-kde4-l10n - Bump PORTREVISION to chase the update of multimedia/libvpx 2012-02-16 15:57:34 +00:00
koi2koi
koi8r-ps
ksocrat - Add LDFLAGS to CONFIGURE_ENV and MAKE_ENV (as it was done with LDFLAGS) 2011-09-23 22:26:39 +00:00
libcyrillic
MT - Update to 5.13 2012-03-15 19:33:51 +00:00
mueller-dic Remove more tags from pkg-descr files fo the form: 2011-10-24 04:17:37 +00:00
muttprint
mythes
napster
p5-Convert-Cyrillic The vast majority of pkg-descr files had the following format when they 2011-10-24 09:11:38 +00:00
p5-cyrillic
p5-Lingua-DetectCyrillic
p5-Lingua-RU-Charset End WWW CPAN URL with a "/" 2011-12-28 08:20:20 +00:00
p5-XML-Parser-encodings The vast majority of pkg-descr files had the following format when they 2011-10-24 09:11:38 +00:00
prawda
pscyr - Return my ports back to the pool. I was unable to make any fixes to 2011-10-24 03:33:20 +00:00
rubygem-russian - Update to 0.6.0 2011-12-07 00:58:04 +00:00
rubygem-rutils
rus-ispell - Pass maintainership to office@FreeBSD.org 2011-11-28 16:06:13 +00:00
rux Remove more tags from pkg-descr files fo the form: 2011-10-24 04:17:37 +00:00
stardict-bars
stardict-computer
stardict-dal
stardict-engcom
stardict-mueller7
stardict-mueller7accent
stardict-pc
tac+ia
tidyup-mail
unzip
wmcyrx
wordpress - Add wordpress 3.3.1 [1][2] 2012-01-06 07:32:54 +00:00
xcode
xcyrBGR
xmms
xpi-tabextensions Remove more tags from pkg-descr files fo the form: 2011-10-24 04:17:37 +00:00
xruskb
Makefile - Add wordpress 3.3.1 [1][2] 2012-01-06 07:32:54 +00:00
Makefile.inc